Der Kipppunkt für Boreale Wälder wurde ursprünglich bei 3C angesetzt, dann auf 1,5C vorgezogen. Jetzt sehen wir sie bei 1,2-1,3C in großem Stil abbrennen. Regel bestätigt: im Klimanotstand kommt fast alles früher & heftiger als angenommen, nicht umgekehrt

A Korean developer released an open source app called "Pixel IMS" that enables VoLTE (and with version 1.1.2, VoWiFi) on select Pixel devices in "unsupported" regions. Best part? It DOESN'T REQUIRE ROOT. https://t.co/ak261C2Cyo

Smartphones für Kids unterm Weihnachtsbaum? Achtung bei Kinderschutz-Apps - Forscher von @sec_consult haben da bei allen getesteten Modellen Lücken gefunden.

When kids bypassing your app restrictions is the least of your problems... https://t.co/NYTNFTednJ You'll not like what @divercinety and @densi_1101 came across. #digitalparenting #internetsafety #parenting #privacy #OnlineSafety #parentalcontrol

https://t.co/HRHpqD680p

Impressed by the great number of news articles about this, a little disappointed that no one seems to reference our research/blog post

Here is our long-term review and proof-of-concept by @divercinety on #privacy issues in @EufyOfficial security cams since 2020. Reconsidering your #blackfriday shopping plans? As @Paul_Reviews puts it: These cams are only "supposedly private". https://t.co/H3fk4sXySc

@Paul_Reviews @EufyOfficial Stay tuned for our upcoming blog post on this topic which confirms that security got strengthened over the past two years but EufyCam is still leaking data to the cloud #Homebase

I found a vulnerability that allowed me to unlock any @Google Pixel phone without knowing the passcode. This may be my most impactful bug so far. Google fixed the issue in the November 5, 2022 security patch. Update your devices! https://t.co/LUwSvEMF3w

Kein großer Unterschied zum indischen Tech Support Scammer:

We're now 2 yrs into the decisive decade. Emissions should be in an unprecedented fall, instead we're seeing the 2nd biggest rise ever recorded. We're wasting invaluable time pretending we can solve this crisis without treating it like a crisis. World leaders are still in denial.

@Android

So I tried out the Android 12 Beta and just hope that this won't make it into the final build. 😵‍💫 There is a good reason why <marquee> is deprecated. @Android

Personal experience: Broken access control is the #1 critical vulnerability that I found during the last few months of pentesting all kinds of web-apps. I am amazed everytime when I simply change an ID in the URL from 999 to 998 and it just gives me other people's data. :)

No phone search without Due Process:

RCE is bad enough, but immediately gaining SYSTEM privileges? exposing a web-application like OWA to the internet seems adventurous in hindsight.

finding myself on the defender's side for an exchange server this weekend was a lot more stressful than i anticipated. it's certainly more fun when you're the one dropping webshells...

Excellent pentests of IoT devices? Learn more in our webinar!

2001

I need to take some time off work so I can focus on doing my job.